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DETAILED ACTION 
Continued Examination Under 37 CFR 1.114 

1 . A request for continued examination under 37 CFR 1.114, including tlie fee set fortli in 
37 CFR 1.17(e), was filed in this application after final rejection. Since this application is eligible 
for continued examination under 37 CFR 1.114, and the fee set forth in 37 CFR 1.17(e) has 
been timely paid, the finality of the previous Office action has been withdrawn pursuant to 37 
CFR 1.1 14. Applicant's submission filed on 04/14/2008 has been entered. 

Response to Arguments 

2. Applicant's arguments with respect to claim 1 and similar claim 15 filed 07/30/2007 have 
been considered but are moot in view of the new ground(s) of rejection. The Examiner relies on 
the combined teaching of the prior art (see below for detailed analysis) to disclose the present 
invention's claim limitation of: transmitting, by the client to the computing device, a first 
challenge (as taught by Whelan), wherein the first challenge comprises an encrypted first 
random number (as taught by Nevoux) and said unique identifier (as taught by Balogh) 
associated with said client. 

Ciaim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or deschbed as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

3. Claims 1 - 2, 5 - 8 and 12 - 22 rejected under 35 U.S.C. 103(a) as being unpatentable 

over Whelan et al (US. PGPub No. 2004/0198220), hereafter "Whelan" further in view of Balogh 
(US PGPub. No. 2001/0023446), hereafter "Balogh" and Nevoux et al. (US Pat. No. 5661806), 
hereafter "Nevoux". 
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4. With regard to claim 1 and similar claim 15, Whelan discloses method of authenticating a 
client to one ore more computing devices on one or more communications networks ([0063], 
lines 1-3), the method comprising the steps of: 

obtaining, by the client, a computing device identifier (Fig. 1, item 28, [0032], lines 21-23, 
association list is downloaded that contains computing device identifier for each sub-net 
indicates obtaining an computing device identifier) associated with a computing device; 

selecting, at said client (Fig. 1, item 28 mobile unit), a set of authentication parameters 
associated with said computing device identifier, with said computing device identifier, said 
authentication parameters ([0043], lines 5-8) being stored in a tamper-resistant physical token 
operatively coupled to said client, said tamper-resistant physical token further permanently 
storing a unique identifier associated with said client, said tamper resistant physical token 
further storing a first cryptographic key; and 

implementing an authentication process employing said set of authentication 
parameters ([0049] lines 1 3-1 6, authenticate the access point reads on implementing an 
authentication process and the access point on the association list indicates 
authentication parameters), the authentication process comprising the steps of: 

transmitting a first challenge (Fig. 2A, item 50, initiates association indicates first 
challenge), 

receiving a second challenge (Fig. 2A, item 66, since the outcome of the decision 
branch of Item 66 feed the response back to the MU indicating there are more AP 
available; it reads on second challenge), said computing device and associated with said 
computer device identifier ([0006], lines 1-5) in which generated and stored at access 
point (Fig. 1, item 20 - AP and 36 - MU association list) 
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permitting, at said client, said client to access said communications network via 

said computing device if said authentication process results in a successful 

authentication of said client (Fig. 2a and 2b, [0049] lines 8-16). 

However, Whelan does not disclose the first challenge comprises an encrypted first 
random number and a unique identifier associated with said computing device, said encrypted 
first random number being encrypted with said first cryptographic key. 

Furthermore, Whelan does not disclose the second challenge comprises an encrypted 
second random number; the second random number generated and encrypted with a second 
cryptographic key. 

However, Whelan does not disclose each client device includes a unique tamper- 
resistant physical token comprising: a random number generator. 

Balogh, on the other hand, discloses the first challenge comprises a unique 
identifier associate with said computing device (Fig. 1, Item SC, [0031] line 5-6) and a first 
cryptographic key (Fig. 2, WLAN-specific settings item, row 9, [0027] lines 12-15). 

Balogh, on the other hand, discloses each client device includes a unique tamper- 
resistant physical token (Fig. 1, item SC, [0030] lines 4-7) comprising: a random number 
generator. 

However, neither Whelan nor Balogh discloses the encrypted first random number being 
encrypted with said first cryptographic key and an encrypted second random number; the 
second random number is generated and encrypted with a second cryptographic key. 

Nevoux, on the other hand, discloses the first challenge comprises an encrypted 
first random number (Fig. 2, SIM Column, R1, R1 being encrypted by an encryption function in 
the initial stage of authentication indicates first encrypted random number) and the encrypted 
first random number being encrypted with the first cryptographic key. 
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Nevoux, further discloses an encrypted second random number (Fig. 2 VLR column, 
SRES item, col.2 lines 62-64, AT is an encryption function that includes a second random 
number R2; thus indicating an encrypted second random number), the second random number 
is generated (Fig. 2, VLR column, R2) and encrypted with a second cryptographic key. 

It would have been obvious to one of the ordinary skill in the art at the time of the 
Applicant's invention was made to modify the authentication process method of Whelan by 
includes a serial number of the tamper resistant physical token, as taught by Balogh to allow 
users to connect to a network without knowing what settings are needed and how to change the 
settings (Balogh, [0007] lines 1-3). Nevertheless, neither Whelan nor Balogh discloses each 
client device includes a unique tamper-resistant physical token comprising: a random number 
generator. Therefore, it would have been further obvious to one of the ordinary skill in the art at 
the time of the applicant's invention was made to modify the methods of Whelan and Balogh 
with the authentication process comprises of an encrypted first random number that being 
encrypted with the first cryptographic key, and an encrypted second random number being 
encrypted with a second cryptographic key, as taught by Nevoux to avoid unauthorized access 
from mobile stations of malicious intruders in a radio-based wireless LAN system. 

5. With regard to claims 2 and 21, Whelan discloses said computing device identifier is a 
basic service set identifier (BSSID) ([0006], lines 1-5). 

6. With regard to claim 5, Whelan does not disclose installing the tamper-resistant physical 
token at the computing device. However, Balogh discloses installing the tamper-resistant 
physical token at the computing device ([0030], lines 7-9). 

It would have been obvious to one of the ordinary skill in the art at the time of the 
applicant's invention was made to modify the method of Whelan by installing the tamper- 
resistant physical token at the computing device, as taught by Balogh to allow users to connect 
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to a network without knowing what settings are needed and how to change the settings ([0007] 
lines 1-3). 

7. With regard to claims 6 and 22, Whelan does not disclose the tamper-resistant physical 
token is adapted to be inserted into a communications port at said client. However, Balgoh 
discloses the tamper-resistant physical token is adapted to be inserted into a communications 
port at said client ([0030] lines 7-9, card reader indicates a communication port). 

It would have been obvious to one of the ordinary skill in the art at the time of the 
applicant's invention was made to modify the method of Whelan such that the tamper-resistant 
physical token is adapted to be inserted into a communications port at said client, as taught by 
Balogh to allow users to connect to a network without knowing what settings are needed and 
how to change the settings ([0007] lines 1-3). 

8. With regard to claim 7, Whelan discloses one or more additional sets of authentication 
parameters ([0050] lines 4-5, temporary association list indicate one or more sets of 
authentication parameters), wherein each set of authentication parameters is associated with a 
unique access point identifier ([0051] lines 1-3). 

However, Whelan does not disclose the tamper-resistant physical token further 
comprises one or more additional sets of authentication parameters, wherein each of the one or 
more additional sets of authentication parameters is associated with a unique computing device 
identifier. 

Balogh, on the other hand, discloses the tamper-resistant physical token (Fig. 1, item 
SC, [0030] lines 4-7) further comprises one or more additional sets of authentication 
parameters, wherein each set of authentication parameters is associated with a unique 
computing device identifier. 
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It would have been obvious to one of the ordinary skill in the art at the time of the 
applicant's invention was made to modify the method of Whelan to include the tamper-resistant 
physical token, as taught by Balogh to allow users to connect to a network without knowing what 
settings are needed and how to change the settings ([0007] lines 1-3). 

9. With regard to claim 8, Whelan discloses each of the unique computing device identifier 
is in relation to its associated set of authentication parameters (Fig. 1, item 34, [0042] 4-7). 

However, Whelan does not discloses each of the unique computing device identifier is 
stored in said tamper-resistant physical token and in relation to its associated set of 
authentication parameters. 

Balogh, on the other hand, discloses each of the unique computing device identifier is 
stored in said tamper-resistant physical token (Fig. 1, item SC, [0030] lines 4-7) and In relation 
to an associated set of authentication parameters. 

It would have been obvious to one of the ordinary skill in the art at the time of the 
applicant's invention was made to modify the method of Whelan such that set of authentication 
parameters are pre-stored in a temper-resistant physical token, as taught by Balogh to allow 
users to connect to a network without knowing what settings are needed and how to change the 
settings ([0007] lines 1-3). 

10. With regard to claim 12, Whelan disclose the unique identifier is a serial number ([0006], 
lines 3-4, BSSID uniquely identify an Access point indicates a serial number), but Whelan does 
not disclose a serial number of the tamper resistant physical token. 

Balogh, on the other hand, discloses the tamper resistant physical token (Fig. 1, item 
SC, [0030] lines 4-7). 

It would have been obvious to one of the ordinary skill in the art at the time of the 
applicant's invention was made to modify the authentication process method of Whelan by 
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includes a senal number of the tamper resistant physical token, as taught by Balogh to allow 
users to connect to a network without knowing what settings are needed and how to change the 
settings (Balogh, [0007] lines 1-3). 

1 1 . With regard to claim 13, Whelan discloses the set of authentication parameters ([0043], 
lines 5-8), further comprises: a network (Fig. 1, item 18, [0042] lines 1-3) 

However, neither Whelan nor Balogh discloses a network receive cryptographic key and 
a network send cryptographic key. 

Nevoux, on the other hand, discloses a network receive cryptographic key (Fig. 2 VLR 
column, receiving SRES indicates receive cryptographic key) and a network send cryptographic 
key (Fig. 2, HLR Column, sending Ks which is a result of the AG encryption function, reads on 
send cryptographic key). 

It would have been obvious to one of the ordinary skill in the art at the time of the 
applicant's invention was made to modify the methods of Whelan and Balogh by including a 
network receive cryptographic key and a network send cryptographic key in the set of 
authentication parameters, as taught by Nevoux to avoid unauthorized access from mobile 
stations of malicious intruders in a radio-based wireless LAN system. 

12. With respect to claim 14, Whelan further discloses the first challenge (Fig. 2A, item 50, 
initiates association indicates first challenge) and the second challenge (Fig. 2A, item 66, since 
the outcome of the decision branch of Item 66 feed the response back to the ML) indicating 
there are more AP available; it reads on second challenge), and decrypting the second 
challenge ([0075] lines 1-7). 

However, neither Whelan nor Balogh discloses encrypting, by the client, the first 
challenge with the network send cryptographic key; and decrypting the second challenge with 
the network receive cryptographic key. 
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Nevoux, on the hand, discloses encrypting said first challenge with said network send 
cryptographic key (Fig. 2, HLR column item Ks, sending Ks which is an encrypted cryptographic 
key from a network indicates network send cryptographic key) and network receive 
cryptographic key (Fig. 2 VLR column, receiving SRES indicates receive cryptographic key) 

It would have been obvious to one of the ordinary skill in the art at the time of the 
applicant's invention was made to modify the methods of Whelan and Balogh to include in the 
authentication parameters further comprises the step of encrypting said first challenge with said 
network send cryptographic key, as taught by Nevoux to avoid unauthorized access from mobile 
stations of malicious intruders in a radio-based wireless LAN system. 

13. With regard to claim 16, Whelan discloses each client device further includes a wireless 
communications transceiver to communicate with one of said one or more computing devices 
via a wireless channel (Fig. 1, [0082] lines 1-6). 

14. With regard to claim 17, Whelan discloses wireless channel (Fig. 1, item 26) is an IEEE 
802.11 wireless channel ([0004] lines 1-4). 

15. With regard to claim 18, Whelan discloses one or more authentication devices (Fig. 1, 
item 10) but does not disclose one or more computing devices are Wi-Fi access points. 

Balogh, on the other hand, disclose one or more authentication devices are Wi-Fi access 
points (Fig. 1, AP1-AP3). 

It would have been obvious to one of the ordinary skill in the art at the time of the 
applicant's invention was made to modify the authentication process method of Whelan by 
including one or more computing devices are Wi-Fi access points, as taught by Balogh to allow 
users to connect to a network without knowing what settings are needed and how to change the 
settings (Balogh, [0007] lines 1-3). 
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16. With regard to claim 19, Whelan discloses at least two Wi-Fi access points (Fig. 1, Item 
28) but does not disclose at least two Wi-Fi access points are associated with different Wi-Fi 
networks are associated with different Wi-Fi networks. 

Balogh, on the other hand, discloses at least two Wi-Fi access points are associated 
with different Wi-Fi networks (Fig. 1, Item API -4 with NW1 and NW2). 

It would have been obvious to one of the ordinary skill in the art at the time of the 
applicant's invention was made to modify the communication system of Whelan by including at 
least two Wi-Fi access points are associated with different Wi-Fi networks, as taught by Balogh 
to allow users to connect to a network without knowing what settings are needed and how to 
change the settings (Balogh, [0007] lines 1-3). 

17. With regard to claim 20, Whelan discloses each of the one or more unique sets of 
authentication parameters is associated with an access point identifier ([0043], lines 5-8). 

Conclusion 

18. Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to LAUREL LASHLEY whose telephone number is (571 )272-0693. The 
examiner can normally be reached on Monday - Thursday, alt Fridays btw 7:30 am & 5 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron, Jr. can be reached on 571-272-3799. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private 
PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you 
would like assistance from a USPTO Customer Service Representative or access to the 
automated information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

Laurel Lashley 
Examiner 
Art Unit 2132 

/L. L./ 

01 July 2008 

/Benjamin E Lanier/ 

Primary Examiner, Art Unit 2132 



